Detecting DDoS Attack on SDN Due to Vulnerabilities in OpenFlow

Sarwan Ali; Maria Khalid Alvi; Safi Faizullah; Muhammad Asad Khan,; Abdullah Alshanqiti; Imdadullah Khan

arXiv:1912.12221·cs.CR·February 4, 2020

Detecting DDoS Attack on SDN Due to Vulnerabilities in OpenFlow

Sarwan Ali, Maria Khalid Alvi, Safi Faizullah, Muhammad Asad Khan,, Abdullah Alshanqiti, Imdadullah Khan

PDF

TL;DR

This paper presents a resource-efficient method to detect compromised hosts causing DDoS attacks in SDN environments exploiting OpenFlow vulnerabilities.

Contribution

It introduces a novel, low-resource detection approach for identifying malicious hosts in SDN networks without special equipment.

Findings

01

The proposed method effectively identifies compromised hosts.

02

It requires minimal computational resources.

03

The solution is suitable for real-time deployment.

Abstract

Software Defined Networking (SDN) is a network paradigm shift that facilitates comprehensive network programmability to cope with emerging new technologies such as cloud computing and big data. SDN facilitates simplified and centralized network management enabling it to operate in dynamic scenarios. Further, SDN uses the OpenFlow protocol for communication between the controller and its switches. The OpenFlow creates vulnerabilities for network attacks especially Distributed Denial of Service (DDoS). DDoS attacks are launched from the compromised hosts connected to the SDN switches. In this paper, we introduce a time- and space-efficient solution for the identification of these compromised hosts. Our solution consumes less computational resources and space and does not require any special equipment.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.